| Max CVSS | 9.3 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-15839 | 7.5 |
D-Link DIR-615 devices have a buffer overflow via a long Authorization HTTP header.
|
23-04-2021 - 15:29 | 28-08-2018 - 17:29 | |
| CVE-2018-10900 | 7.2 |
Network Manager VPNC plugin (aka networkmanager-vpnc) before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an
|
04-12-2020 - 18:15 | 26-07-2018 - 15:29 | |
| CVE-2018-8716 | 3.5 |
WSO2 Identity Server before 5.5.0 has XSS via the dashboard, allowing attacks by low-privileged attackers.
|
28-02-2019 - 13:20 | 25-04-2018 - 20:29 | |
| CVE-2018-16252 | 2.1 |
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.
|
04-12-2018 - 19:05 | 05-09-2018 - 21:29 | |
| CVE-2018-15844 | 6.8 |
An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit.
|
17-10-2018 - 20:26 | 25-08-2018 - 21:29 | |
| CVE-2007-5487 | 9.3 |
Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code via a long URL in an EXTM3U section of a .m3u file.
|
19-10-2017 - 01:30 | 16-10-2007 - 23:17 |